Lucene search
K

16 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:5 a.m.18 views

CVE-2022-28309

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.02.022. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

5.5CVSS6.1AI score0.00613EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/04/12 12:0 a.m.22 views

Security Updates for Microsoft Dynamics 365 (on-premises) (April 2023)

The Microsoft Dynamics 365 on-premises is missing security updates. It is, therefore, affected by multiple session spoofing vulnerabilities. An attacker can exploit these to perform actions with the privileges of another user. Note that Nessus has not tested for these issues but has instead relie...

7.6CVSS6.6AI score0.00748EPSS
Exploits0References4
NVD
NVD
added 2023/04/11 9:15 p.m.25 views

CVE-2023-28309

Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...

7.6CVSS7.2AI score0.00748EPSS
Exploits0References1
OSV
OSV
added 2023/04/11 9:15 p.m.5 views

CVE-2023-28309

Microsoft Dynamics 365 on-premises Cross-site Scripting Vulnerability...

5.4CVSS6.7AI score0.00748EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/11 7:13 p.m.45 views

CVE-2023-28309 Microsoft Dynamics 365 (on-premises) Cross-site Scripting Vulnerability

...

7.6CVSS7.7AI score0.00748EPSS
Exploits0References1
CVE
CVE
added 2023/04/11 7:13 p.m.125 views

CVE-2023-28309

CVE-2023-28309 affects Microsoft Dynamics 365 (on-premises) and is a Cross-site Scripting vulnerability. ENISA/NCSC notes it enables a remote attacker to exploit XSS to execute code in the victim’s browser and potentially access sensitive data; Attack vector is network with user interaction requi...

7.6CVSS5.9AI score0.00748EPSS
Exploits0References1Affected Software1
Kaspersky
Kaspersky
added 2023/04/11 12:0 a.m.34 views

KLA48838 Multiple vulnerabilities in Microsoft Dynamics

Multiple vulnerabilities were found in Microsoft Dynamics. Malicious users can exploit these vulnerabilities to spoof user interface. Below is a complete list of vulnerabilities: 1. A cross-site-scripting XSS vulnerability Microsoft Dynamics 365 Customer Voice can be exploited remotely to spoof...

7.6CVSS6.1AI score0.00748EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2023/03/29 12:0 a.m.9 views

CVE-2022-28309

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Bentley View 10.16.02.022. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

3.3CVSS5.2AI score0.00613EPSS
Exploits0References2
CVE
CVE
added 2023/03/29 12:0 a.m.50 views

CVE-2022-28309

Bentley View 10.16.02.022 is affected by a parsing flaw in 3DS files that can trigger an out-of-bounds read in the allocated buffer. The vulnerability, associated with ZDI-CAN-16308, requires user interaction (victim opens a malicious file/page). Exploitation could lead to arbitrary code executio...

5.5CVSS4AI score0.00613EPSS
Exploits0References2Affected Software2
NVD
NVD
added 2021/04/13 8:15 p.m.17 views

CVE-2021-28309

Windows Kernel Information Disclosure Vulnerability...

5.5CVSS0.00806EPSS
Exploits0References1
CVE
CVE
added 2021/04/13 7:32 p.m.109 views

CVE-2021-28309

Technical details for CVE-2021-28309 (Windows Kernel Information Disclosure Vulnerability) are not publicly provided in the supplied documents. No affected products, versions, root cause, impact, or remediations are disclosed here. Monitor sources for updates.

5.5CVSS6.6AI score0.00806EPSS
Exploits0References1Affected Software8
Kaspersky
Kaspersky
added 2021/04/13 12:0 a.m.38 views

KLA12142 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Support Update. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges, bypass security restrictions, spoof user interface. Below is a...

8.8CVSS10AI score0.06112EPSS
Exploits1References63
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.56 views

KB5001389: Windows Server 2008 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Microsoft Internet Messaging API Remote Code Execution Vulnerability CVE-2021-27089 - Windows Kernel Information Disclosure Vulnerability CVE-2021-27093, CVE-2021-28309 - Windows Media...

8.8CVSS7.4AI score0.06112EPSS
Exploits1References49
Tenable Nessus
Tenable Nessus
added 2021/04/13 12:0 a.m.53 views

KB5001347: Windows 10 version 1607 / Windows Server 2016 Security Update (Apr 2021)

The remote Windows host is missing security updates. It is, therefore, affected by multiple vulnerabilities: - Win32k Elevation of Privilege Vulnerability CVE-2021-27072 - Windows Media Photo Codec Information Disclosure Vulnerability CVE-2021-27079 - Microsoft Internet Messaging API Remote Code...

8.8CVSS7AI score0.61648EPSS
Exploits3References64
Cvelist
Cvelist
added 2021/01/22 7:44 p.m.10 views

CVE-2020-28309

...

Exploits0
CVE
CVE
added 2021/01/22 7:44 p.m.23 views

CVE-2020-28309

This CVE entry is rejected/not used; it does not correspond to an active vulnerability.

6.9AI score
Exploits0
Rows per page
Query Builder